Prefer to talk? Get in touch with our experts today on 0151 236 5656

Protecting operational technology

16 May 2024

Given the increasing use of cloud-hosted systems to control operational technology, the National Cyber Security Centre (NCSC) has recently published guidance in this area to assist organisations to risk assess and protect these systems.

Operational technology can be defined as technology which interfaces with the physical world and includes Industrial Control Systems (ICS), Supervisory Control and Data Acquisition (SCADA) and Distributed Control Systems (DCS). Such systems are increasingly being targeted by threat actors due to the potential for immediate and devasting consequences following a successful cyber-attack.

Areas covered by the guidance include:

  • Introduction to ‘cloud-hosted SCADA’
  • Threat to SCADA
  • Gaining flexibility
  • Resilience and scalability
  • Remote access improvements
  • Centralising authentication, secrets, and key management
  • Do you have access to cloud expertise?
  • Have you considered the policies and processes required?
  • Have you considered the impact of shared services?
  • Software suitability for the cloud
  • Legacy hardware solutions and hybrid connectivity
  • Latency
  • Data sensitivity

It is recommended that organisations with operational technology review their cyber risk management arrangements against this new guidance which is available here.

For further information on how Griffiths & Armour can help support your business, please get in touch.

Whilst care has been taken in the production of this article and the information contained within it has been obtained from sources that Griffiths & Armour, an Aon company believes to be reliable, Griffiths & Armour, an Aon company does not warrant, represent or guarantee the accuracy, adequacy, completeness or fitness for any purpose of the article or any part of it and can accept no liability for any loss incurred in any way whatsoever by any person who may rely on it. In any case any recipient shall be entirely responsible for the use to which it puts this article.

This article has been compiled using information available to us up to 16 May 2024

Author

Greg Street

Greg Street

Risk Management Managing Director

Contact

Knowledge centre

Insights

23rd Jul ’25

New Crisis Communications Services

New Crisis Communications Services

Insights

27th Mar ’25

Business Continuity: Navigating Protectionist Tariffs

Business Continuity: Navigating Protectionist Tariffs

Insights

26th Feb ’25

Business Interruption insurance guidance

Business Interruption insurance guidance

Locations

Liverpool
12 Princes Parade, Princes Dock,
Liverpool, L3 1BG
0151 236 5656

London
The Aon Centre, The Leadenhall Building,
122 Leadenhall Street, London,
EC3V 4AN
0151 236 5656

Manchester
Chancery Place, 50 Brown Street,
Manchester, M2 2JT
0161 817 4450

Dublin
15 George’s Quay, Dublin 2,
DO2 VR98, Ireland
+353 (0) 1 902 6769

Follow

YouTube
LinkedIn

Legal

Privacy Notices
Terms & Conditions
Legal & Regulatory

Contact

E: [email protected]
T: 0151 236 5656

Stay connected

Receive the latest insights and sector updates straight to your inbox.
Subscribe now
  • Cyber Essentials Certified Plus
  • Chartered Insurance Brokers